WhatsApp OTP verification: the complete setup guide

Cost: ~$0.0014 per OTP in India vs ~$0.005 for SMS (3.5× cheaper); ~$0.0135 in the US vs $0.0075-0.04 for SMS. Delivery: median 2 seconds vs 10–30 seconds for SMS, with no carrier filtering. UX: WhatsApp's autofill button copies the code into your app with one tap — no manual digit entry. Conversion lift on signup flows: typically 5–15%.

Meta introduced a dedicated 'Authentication' template category specifically for OTPs. It has a fixed body format Meta provides ('{{1}} is your verification code. For your security, do not share this code.'), a 'Copy code' or 'Autofill' button, and a 10-minute validity. You can't customise the body text — that's what makes the category cheap and instantly approved.

1) Have WhatsApp Business API access. 2) In your BSP dashboard, create an Authentication template (auto-filled — you only choose copy-code or autofill, plus language). 3) Submit — usually approved within minutes. 4) Call the send endpoint from your backend at the point you'd normally trigger SMS. 5) On send failure or delivery failure, fall back to SMS via your existing provider.

Most BSPs expose a /messages POST endpoint. Pseudocode: `await fetch(BSP_API+'/messages', { method:'POST', headers:{Authorization:`Bearer ${token}`}, body: JSON.stringify({ to: phone, template: 'auth_otp', variables: [code] }) })`. Always store the code server-side (hashed, 10-min TTL) and verify on submit — never trust the client.

Not every user has WhatsApp installed. Smart flow: send WhatsApp OTP → wait 30–60 seconds for delivery webhook → if not delivered or read, send SMS OTP. Most BSPs (LandinChat included) can run the fallback automatically — you just configure your SMS provider and the timeout window.